Author(s)

Yonggang Li, Min Han, Aiyi Cao, Shanmin Pan

Corresponding Author

Yonggang Li

Abstract

With the construction of the ubiquitous power Internet of Things in our country, web applications have gradually replaced client applications in the power industry, and security incidents in which attackers use web application vulnerabilities to conduct malicious attacks are increasing. In order to ensure the security of power web applications, it is increasingly important to find and repair web application vulnerabilities in a timely manner. This paper proposes a combination of active and passive power web application vulnerability scanning technology. It combines active scanning technology and passive scanning technology based on network intelligent crawlers to quickly and comprehensively obtain vulnerability information and improve the efficiency and coverage of power web application system vulnerability detection.

Keywords

Power web application system, Web Crawler, Passive scanning, Vulnerability detection